6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

6c8e20fb2c...a7.exe

windows7-x64

7

6c8e20fb2c...a7.exe

windows10-2004-x64

4

Sharing

General

Target

6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7
Size

1.8MB
Sample

240104-nlbt5seebr
MD5

00924229de55853e894c45b78b186d0d
SHA1

5a22120a81f0056c345eb99041fb40258937ad84
SHA256

6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7
SHA512

fb04c5a6a221210ed74a54adb5aef2fd6ba12710e16f0fe65f2b1eb0b88a18edbebb330ad8723ee28ada28222d8628f5a94dd295f7272c394d3dd0f94a4d0689
SSDEEP

49152:sx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WA8ErvL73RLSo+2fhl:svbjVkjjCAzJ4rvvRe12fD

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7.exe

Resource

win7-20231215-en

spyware stealer

windows7-x64

15 signatures

150 seconds

Behavioral task

behavioral2

Sample

6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Targets

- Target
  
  6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7
- Size
  
  1.8MB
- MD5
  
  00924229de55853e894c45b78b186d0d
- SHA1
  
  5a22120a81f0056c345eb99041fb40258937ad84
- SHA256
  
  6c8e20fb2cf8122c324eeb05dcd6802b880907507c99baa872d5cb7c7ec5dfa7
- SHA512
  
  fb04c5a6a221210ed74a54adb5aef2fd6ba12710e16f0fe65f2b1eb0b88a18edbebb330ad8723ee28ada28222d8628f5a94dd295f7272c394d3dd0f94a4d0689
- SSDEEP
  
  49152:sx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WA8ErvL73RLSo+2fhl:svbjVkjjCAzJ4rvvRe12fD
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy